This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/0d68d4-adb3-4ff9-b78a-4ef9d07c4405/1/oW_FIcyEUkX61KE2IHd2ICPcwP4.roa File: oW_FIcyEUkX61KE2IHd2ICPcwP4.roa (raw, json) Hash identifier: HBj5S2pG7gcpSo5gnpuf2s0t9RQaygJDmBwJYZXDb5g= Subject key identifier: A1:6F:C5:21:CC:84:52:45:FA:D4:A1:36:20:77:76:20:23:DC:C0:FE Certificate issuer: /CN=19193cd0cfb9395989358e0396312cfbb1c88ffe Certificate serial: 019B790FFA5AF1B8BA74DD7790B4EEA30568 Authority key identifier: 19:19:3C:D0:CF:B9:39:59:89:35:8E:03:96:31:2C:FB:B1:C8:8F:FE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GRk80M-5OVmJNY4DljEs-7HIj_4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/0d68d4-adb3-4ff9-b78a-4ef9d07c4405/1/oW_FIcyEUkX61KE2IHd2ICPcwP4.roa Signing time: Thu 01 Jan 2026 10:17:28 +0000 ROA not before: Thu 01 Jan 2026 10:17:28 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 211612 IP address blocks: 37.19.204.0/24 maxlen: 24 37.19.208.0/24 maxlen: 24 37.19.219.0/24 maxlen: 24 79.127.251.0/24 maxlen: 24 2a02:6ea0:e400::/40 maxlen: 40 2a02:6ea0:e500::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/0d68d4-adb3-4ff9-b78a-4ef9d07c4405/1/GRk80M-5OVmJNY4DljEs-7HIj_4.crl rsync://rpki.ripe.net/repository/DEFAULT/02/0d68d4-adb3-4ff9-b78a-4ef9d07c4405/1/GRk80M-5OVmJNY4DljEs-7HIj_4.mft rsync://rpki.ripe.net/repository/DEFAULT/GRk80M-5OVmJNY4DljEs-7HIj_4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:0f:fa:5a:f1:b8:ba:74:dd:77:90:b4:ee:a3:05:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=19193cd0cfb9395989358e0396312cfbb1c88ffe Validity Not Before: Jan 1 10:17:28 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a16fc521cc845245fad4a1362077762023dcc0fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:83:c4:89:a6:d4:6b:9c:41:c6:64:c8:0d:9c: 27:c0:01:ea:02:45:af:48:9a:b6:d5:3e:5c:ee:9a: f5:24:83:7b:d9:43:6e:8e:58:e4:a7:2d:b1:5e:5c: 6d:59:42:48:0c:ec:0e:17:64:ca:26:b5:c2:72:da: 45:2e:27:13:07:47:53:d5:b9:28:03:ab:85:90:44: c9:5e:d7:9d:8e:33:74:cf:f7:73:d4:6c:bf:ed:25: 1d:96:49:d8:a2:48:e9:1f:d8:d6:f1:ee:93:d9:b4: 41:9d:a6:5c:3d:ac:45:6e:71:f0:3a:b1:1b:b3:e4: 10:83:68:c8:b8:b4:1e:ed:e8:e7:8c:80:db:52:64: 2a:5e:cb:0b:f4:11:e4:fa:0a:fb:60:2d:4f:49:2d: 64:0f:70:05:44:0f:1d:87:e1:3a:bf:db:21:5a:e7: 4b:a3:36:44:0c:31:3c:00:bd:d4:4c:87:37:f8:4c: e6:e7:d4:24:03:eb:0e:4a:f7:21:77:65:d0:6f:6d: 35:b4:36:21:71:ad:b4:ef:90:dd:72:72:8f:ab:7e: 6d:17:66:43:1a:40:50:aa:f9:e7:5a:96:ac:e5:b9: 3c:f5:8b:e4:01:47:0e:38:e5:9f:95:31:e6:91:65: 42:1d:c9:7c:aa:c1:18:5f:cf:a6:c9:7c:e3:3a:f0: b4:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:6F:C5:21:CC:84:52:45:FA:D4:A1:36:20:77:76:20:23:DC:C0:FE X509v3 Authority Key Identifier: keyid:19:19:3C:D0:CF:B9:39:59:89:35:8E:03:96:31:2C:FB:B1:C8:8F:FE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GRk80M-5OVmJNY4DljEs-7HIj_4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/0d68d4-adb3-4ff9-b78a-4ef9d07c4405/1/oW_FIcyEUkX61KE2IHd2ICPcwP4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/02/0d68d4-adb3-4ff9-b78a-4ef9d07c4405/1/GRk80M-5OVmJNY4DljEs-7HIj_4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.19.204.0/24 37.19.208.0/24 37.19.219.0/24 79.127.251.0/24 IPv6: 2a02:6ea0:e400::/39 Signature Algorithm: sha256WithRSAEncryption 74:a3:6a:61:ca:eb:ad:b4:5a:fe:fa:e9:9b:73:c3:bd:fd:87: c6:52:c6:69:4c:13:c6:3d:08:3c:ed:af:0e:a3:c2:20:59:c9: 6f:53:1b:dd:6a:25:97:59:bf:2f:fc:14:e6:ac:cb:1f:3f:2f: 41:f3:db:13:43:13:91:56:de:14:ba:21:92:4f:5f:14:34:0f: 1a:11:a9:42:9b:31:e9:de:62:ae:19:35:54:3f:d8:dc:44:6c: 2a:b4:1a:cb:b8:be:b6:2e:82:f2:ba:4a:12:d7:e3:4a:11:75: f3:75:1e:8f:cc:4e:dd:9d:58:05:14:5b:43:54:1e:95:96:4e: ce:62:68:39:23:ea:7a:35:f9:8a:91:bf:d0:fa:ed:06:48:6c: a4:92:15:26:36:0d:7f:38:4d:b5:48:7e:89:6f:26:5b:81:44: 83:91:ba:ae:37:76:c0:c5:31:dd:2a:e8:51:42:ec:4d:ee:a8: 71:36:fc:23:7d:c3:64:92:81:c3:6c:ec:5e:32:b7:3f:3a:f5: bc:0d:c6:36:1b:8b:b9:d8:ea:43:5d:2c:68:92:99:d6:6a:57: 8e:3a:69:e8:63:7f:fd:9d:96:a5:49:88:2a:17:4a:27:79:7f: 74:94:36:0a:b2:3f:4d:3d:b2:04:01:08:70:aa:29:62:3a:44: e4:58:bc:d3 -----BEGIN CERTIFICATE----- MIIFHzCCBAegAwIBAgISAZt5D/pa8bi6dN13kLTuowVoMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE5MTkzY2QwY2ZiOTM5NTk4OTM1OGUwMzk2MzEyY2ZiYjFj ODhmZmUwHhcNMjYwMTAxMTAxNzI4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhMTZmYzUyMWNjODQ1MjQ1ZmFkNGExMzYyMDc3NzYyMDIzZGNjMGZlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAroPEiabUa5xBxmTIDZwnwAHqAkWv SJq21T5c7pr1JIN72UNujljkpy2xXlxtWUJIDOwOF2TKJrXCctpFLicTB0dT1bko A6uFkETJXtedjjN0z/dz1Gy/7SUdlknYokjpH9jW8e6T2bRBnaZcPaxFbnHwOrEb s+QQg2jIuLQe7ejnjIDbUmQqXssL9BHk+gr7YC1PSS1kD3AFRA8dh+E6v9shWudL ozZEDDE8AL3UTIc3+Ezm59QkA+sOSvchd2XQb201tDYhca2075DdcnKPq35tF2ZD GkBQqvnnWpas5bk89YvkAUcOOOWflTHmkWVCHcl8qsEYX8+myXzjOvC0cQIDAQAB o4ICKzCCAicwHQYDVR0OBBYEFKFvxSHMhFJF+tShNiB3diAj3MD+MB8GA1UdIwQY MBaAFBkZPNDPuTlZiTWOA5YxLPuxyI/+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR1JrODBNLTVPVm1KTlk0RGxqRXMtN0hJal80LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMi8wZDY4ZDQtYWRiMy00ZmY5LWI3OGEt NGVmOWQwN2M0NDA1LzEvb1dfRkljeUVVa1g2MUtFMklIZDJJQ1Bjd1A0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMi8wZDY4ZDQtYWRiMy00ZmY5LWI3OGEtNGVmOWQwN2M0NDA1 LzEvR1JrODBNLTVPVm1KTlk0RGxqRXMtN0hJal80LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEEGCCsGAQUFBwEHAQH/BDIwMDAeBAIAATAYAwQAJRPMAwQA JRPQAwQAJRPbAwQAT3/7MA4EAgACMAgDBgEqAm6g5DANBgkqhkiG9w0BAQsFAAOC AQEAdKNqYcrrrbRa/vrpm3PDvf2HxlLGaUwTxj0IPO2vDqPCIFnJb1Mb3Woll1m/ L/wU5qzLHz8vQfPbE0MTkVbeFLohkk9fFDQPGhGpQpsx6d5irhk1VD/Y3ERsKrQa y7i+ti6C8rpKEtfjShF183Uej8xO3Z1YBRRbQ1QelZZOzmJoOSPqejX5ipG/0Prt BkhspJIVJjYNfzhNtUh+iW8mW4FEg5G6rjd2wMUx3SroUULsTe6ocTb8I33DZJKB w2zsXjK3Pzr1vA3GNhuLudjqQ10saJKZ1mpXjjpp6GN//Z2WpUmIKhdKJ3l/dJQ2 CrI/TT2yBAEIcKopYjpE5Fi80w== -----END CERTIFICATE-----Generated at Sun Jan 25 19:59:56 2026 by rpki-client